2 個答案
- 最新
- 最多得票
- 最多評論
1
When moving from a single account Security hub to a multi account, the recommendation would be to Integrate Security hub with AWS Organizations. This would help automate and streamline the management of accounts. You can integrate with Organizations if you have more than one AWS account that uses Security Hub.
The two ways to enable AWS Security Hub is by integrating with AWS Organizations or manually.
- AWS Organizations: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-settingup.html#securityhub-orgs-setup-overview
- Manually: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-settingup.html#securityhub-manual-setup-overview
In case you customer is choosing the manual route they can disable Security Hub from Payer account and enable it in the Security account. Please note the following before disabling The following occurs when you disable Security Hub for an account:
- No new findings are process for the account.
- After 90 days, your existing findings and insights and any Security Hub configuration settings are deleted and cannot be recovered.
- If you want to save your existing findings, you must export them before you disable Security Hub. For more information, see Effect of account actions on Security Hub data.Any enabled standards and controls are disabled. https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-disable.html
已回答 1 個月前
相關內容
- 已提問 6 個月前
- AWS 官方已更新 2 年前
- AWS 官方已更新 2 年前
- AWS 官方已更新 1 年前